Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hygH0dC5wXnaFZ5VQjXDAPeViEE.roa
File: hygH0dC5wXnaFZ5VQjXDAPeViEE.roa (raw, json)
Hash identifier: cEw3KySYcrJI9BAazV1PTm38d4heK0BkI8exDsH0yKs=
Subject key identifier: 87:28:07:D1:D0:B9:C1:79:DA:15:9E:55:42:35:C3:00:F7:95:88:41
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FCBC3F2FD96EB5D16586757B6E8281EE3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hygH0dC5wXnaFZ5VQjXDAPeViEE.roa
Signing time: Thu 30 May 2024 23:09:27 +0000
ROA not before: Thu 30 May 2024 23:09:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 31 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cb:c3:f2:fd:96:eb:5d:16:58:67:57:b6:e8:28:1e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 30 23:09:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=872807d1d0b9c179da159e554235c300f7958841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:47:8d:69:b3:68:51:56:9d:19:b3:c5:eb:2c:
7b:42:b8:1d:b4:da:d5:e2:a9:c4:0c:8b:1c:38:21:
8f:0b:40:ae:57:06:73:3d:e0:d8:94:45:47:8f:e8:
c1:89:0a:9c:59:1c:2e:1f:fd:81:74:f6:71:99:50:
30:a2:6d:af:ab:e5:06:87:2b:62:2e:33:9e:15:ed:
56:cd:53:26:69:f5:f3:59:cb:a4:f4:9a:e1:76:3a:
22:8f:99:5e:0f:bd:09:42:77:71:3b:92:e7:4d:12:
02:9a:3f:09:ee:08:81:8c:81:6a:aa:37:81:6f:e8:
5b:4f:c7:81:0e:34:33:c5:f7:6c:62:91:ea:2f:ac:
18:c7:ef:d9:c1:af:9d:c7:90:e5:d5:96:81:56:41:
55:55:df:c6:83:20:22:c6:17:40:76:c9:3c:f7:36:
c8:07:6b:d0:8b:c9:7c:86:07:67:09:96:6c:b3:e3:
34:71:4e:67:50:cc:06:0f:d3:bf:45:86:0e:a8:e6:
ac:96:1c:ad:49:cb:8a:b7:b7:ea:a4:70:e2:f2:df:
3b:dc:cc:91:9c:42:8f:1a:0e:db:b6:48:9b:e3:a3:
05:45:68:ca:97:a9:d0:69:47:fc:90:ec:68:94:44:
29:79:b2:8f:bb:5a:4d:5e:83:47:ea:b9:40:59:81:
de:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:28:07:D1:D0:B9:C1:79:DA:15:9E:55:42:35:C3:00:F7:95:88:41
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hygH0dC5wXnaFZ5VQjXDAPeViEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5a:e7:02:31:1a:15:78:cb:6c:17:bf:58:3c:28:c3:73:0d:bc:
0a:89:0f:a5:4b:d2:14:28:7e:6a:22:9b:69:eb:c8:a0:ba:6d:
df:96:b4:f3:ee:cd:35:d0:b6:95:30:45:86:5b:1b:85:32:f4:
3d:1d:79:e3:d9:54:3e:ca:b2:91:d6:20:7a:04:b1:0f:04:bf:
90:10:b6:ed:e0:2f:b2:3a:73:13:70:8b:4e:ab:84:9d:75:b8:
4f:b6:36:14:12:42:5c:c9:fb:8b:ad:1e:33:6c:ba:11:cf:b4:
bb:63:5c:25:59:6b:3f:25:02:b0:a7:b5:b7:45:17:31:02:ac:
23:ec:f8:6e:67:28:70:ad:20:0f:06:c6:a2:2e:97:9c:bc:3c:
e6:06:d1:2e:a7:32:9b:7e:07:64:c0:6e:40:41:c8:02:99:08:
35:97:aa:33:42:54:5b:72:75:df:7e:fb:1d:b0:9d:c1:82:f7:
99:04:70:c6:26:27:f5:bb:e0:18:5f:38:43:cf:c3:e9:cd:b0:
41:a3:ae:2c:ba:0c:4d:e6:8d:a4:b6:75:d5:e8:40:61:28:d9:
66:cf:d5:3e:d7:c8:44:81:c4:ba:93:de:07:3b:a2:ce:b3:2b:
fd:43:6c:f2:4a:95:ae:30:15:86:08:7e:12:33:dd:28:df:8c:
7b:6e:37:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:40 2025 by rpki-client